mirror/pnpm
1
0
Fork 0
mirror of https://github.com/pnpm/pnpm.git synced 2026-03-29 12:31:52 -04:00
Code Issues Packages Projects Releases Wiki Activity
8,207 Commits 371 Branches 1,865 Tags
e87754df1f4d3003f03ddb16bf19ecefe19f4e40
Commit Graph

102 Commits

Author SHA1 Message Date
Zoltan Kochan
1d9bbeab75 ci: update release tags 2023-03-28 00:29:34 +03:00
Zoltan Kochan
eceaa8b8b7 feat!: drop Node.js 14 support 2023-03-18 17:11:38 +02:00
Zoltan Kochan
d66dcb452d Merge branch 'main' into v8 2023-03-14 03:48:44 +02:00
Zoltan Kochan
ba4b2db1f2 ci: fix release 2023-03-08 03:33:01 +02:00
Zoltan Kochan
3ef3f13265 ci: use corepack 2023-03-06 03:25:49 +02:00
Zoltan Kochan
1f81e70e1a Merge branch 'main' into v8 2023-03-05 15:06:47 +02:00
Zoltan Kochan
045e35dd00 ci: fix setting auth token 2023-03-03 09:13:19 +02:00
Zoltan Kochan
98397265a1 ci: tag with latest-7 2023-03-03 09:07:17 +02:00
Zoltan Kochan
059c6e83bd ci: turn on audit 2023-02-28 11:31:56 +02:00
Zoltan Kochan
91b8027441 ci: use pnpm v8 (#6116) 2023-02-22 17:50:20 +02:00
Zoltan Kochan
9741115406 revert: "ci: use pnpm v8" 
This reverts commit 806b72d9d5.
 2023-02-21 04:42:02 +02:00
Zoltan Kochan
806b72d9d5 ci: use pnpm v8 2023-02-20 23:53:27 +02:00
Zoltan Kochan
1bef112ae8 ci: post link to release page in mastodon post 2023-02-18 04:24:37 +02:00
Zoltan Kochan
8ff0c7cd88 revert: "ci: introduce a centralized GHA check/gate job (#5723)" 
This reverts commit a5690f4946.
 2023-02-18 04:00:59 +02:00
Zoltan Kochan
dba40a4683 ci: post to mastodon on release 2023-02-18 03:39:32 +02:00
sitiom
c5e7e03ec2 ci: bump Winget Releaser version to v2 (#6075) 2023-02-12 17:37:18 +02:00
Zoltan Kochan
977caa7d7c ci: skip audit temporarily 2023-02-11 04:04:35 +02:00
sitiom
e46db67e5e ci: set workflow dispatch inputs to Winget Releaser (#6011) 2023-02-01 04:09:37 +02:00
Zoltan Kochan
23ae5bbaf0 ci: fix post-to-reddit action 2023-02-01 04:07:22 +02:00
Zoltan Kochan
21cac8f3a4 ci: fix update-latest action 2023-02-01 03:49:52 +02:00
Zoltan Kochan
e14ba539a7 ci: make a post in reddit on new release 2023-02-01 02:06:36 +02:00
Zoltan Kochan
4bf7f2c422 ci: release to winget should happen when tagging happens 2023-01-31 17:20:37 +02:00
sitiom
649153b124 ci: add release environment to publish job (#5997) 2023-01-29 16:31:49 +02:00
sitiom
cc591d8378 ci: add Winget Releaser workflow (#5989) 2023-01-29 02:54:39 +02:00
Zoltan Kochan
73bb2a2ea3 ci: skip cache 2022-12-10 16:13:12 +02:00
Sviatoslav Sydorenko
a5690f4946 ci: introduce a centralized GHA check/gate job (#5723) 
This patch is intended to lower the maintenance burden of having to
manually go through each matrix subjob name in the branch protection
repository settings. It allows to only include the check job in the
branch protection and it will robustly determine if the dependencies
have succeeded or not.

It is currently mostly serves the Python ecosystem in projects like
aiohttp, cryptography, open edX, pip etc. But I've also seen other
communities picking it up lately, like the AWS Rust SDK and even the
engine powering https://dev.to, to my surprise. Strictly speaking, it
is agnostic.

Ref: https://github.com/marketplace/actions/alls-green#why
 2022-11-30 18:25:18 +02:00
Zoltan Kochan
d67c68979b ci: run audit 2022-11-20 22:25:40 +02:00
Zoltan Kochan
4e2623729e ci: clone ldid from GitLab 2022-11-20 22:07:37 +02:00
Zoltan Kochan
4ca53b0b50 refactor: group projects in different subdirectories (#5659) 2022-11-20 01:35:22 +02:00
Zoltan Kochan
75ac5ca2e6 ci: test on Node.js 19 2022-10-30 03:20:00 +03:00
Zoltan Kochan
1d29fed2eb revert: "ci(release): set npm token via env variable" 
This reverts commit e32972dc25.
 2022-10-20 01:51:36 +03:00
Zoltan Kochan
e32972dc25 ci(release): set npm token via env variable 2022-10-17 03:41:27 +03:00
Zoltan Kochan
387ceddb3a revert: "ci: set auth token through env variable" 
This reverts commit 51e5a8740d.
 2022-10-16 21:27:41 +03:00
Zoltan Kochan
51e5a8740d ci: set auth token through env variable 2022-10-16 01:35:27 +03:00
Zoltan Kochan
eb8bc4b629 ci: set auth token through env variable 2022-10-16 01:28:19 +03:00
Zoltan Kochan
9f2a00ea1a ci: update pnpm/action-setup to v2.2.4 2022-10-15 21:15:28 +03:00
Zoltan Kochan
6d3ca479d4 ci: test on Node.js 18 2022-10-15 04:34:41 +03:00
Alex
54540b1763 ci: GitHub Workflows security hardening (#5405) 
* build: harden ci.yml permissions

Signed-off-by: Alex <aleksandrosansan@gmail.com>

* build: harden update-latest.yml permissions

Signed-off-by: Alex <aleksandrosansan@gmail.com>

Signed-off-by: Alex <aleksandrosansan@gmail.com>
 2022-09-25 01:47:51 +03:00
MCMXC
becacb99a9 build: update used versions in github workflow actions (#5168) 
- update all actions/* to v3
- update github/codeql-action/* to v2
 2022-08-06 21:11:15 +03:00
Zoltan Kochan
1d84a69e45 ci: add name to update-latest action 2022-07-30 12:47:49 +03:00
Zoltan Kochan
2b859a46a5 ci: fix tagging action 2022-07-22 15:51:14 +03:00
Zoltan Kochan
3dcfec9a69 ci: a new action for tagging 2022-07-22 15:48:43 +03:00
Zoltan Kochan
cdfaf83b7c ci: test on Node.js 14.6 2022-06-11 05:05:09 +03:00
Zoltan Kochan
99d5beac0f ci: update verdaccio cache 2022-06-01 02:48:58 +03:00
Zoltan Kochan
b18371400e ci: update setup pnpm action version 2022-05-28 17:29:05 +03:00
Zoltan Kochan
b865ff0b04 revert: "ci: test on Node.js 18" 
This reverts commit 41a9e1caca.
 2022-04-23 18:48:04 +03:00
Zoltan Kochan
41a9e1caca ci: test on Node.js 18 2022-04-23 17:21:27 +03:00
neilnaveen
6bbb7b1d26 chore: Set permissions for GitHub actions (#4607) 
Restrict the GitHub token permissions only to the required ones; this way, even if the attackers will succeed in compromising your workflow, they won’t be able to do much.

- Included permissions for the action. https://github.com/ossf/scorecard/blob/main/docs/checks.md#token-permissions

https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#permissions

https://docs.github.com/en/actions/using-jobs/assigning-permissions-to-jobs

[Keeping your GitHub Actions and workflows secure Part 1: Preventing pwn requests](https://securitylab.github.com/research/github-actions-preventing-pwn-requests/)

Signed-off-by: neilnaveen <42328488+neilnaveen@users.noreply.github.com>
 2022-04-22 03:04:45 +03:00
Zoltan Kochan
5420148392 feat: Node.js 12 is not supported 2022-03-15 02:18:08 +02:00
Zoltan Kochan
c341382d0c chore(deps): update 2022-02-23 18:40:21 +02:00